Does anyone know if its possible and how to make an openssl
based server support the SGC handshaking an IE export browser
makes when it attempts to reset the connection and restart the SSL handshake
at the higher encryption.
With netscape its easy it seems to just reconnect and start all over
Craig Hellon wrote:
Does anyone know if its possible and how to make an openssl
based server support the SGC handshaking an IE export browser
makes when it attempts to reset the connection and restart the SSL handshake
at the higher encryption.
With OpenSSL 0.9.5 or later it should work
At 03:47 PM 1/1/00 +0100, Christian Buysschaert wrote:
Hello Bertie,
Thanks for providing this patch!
I've been testing it but have been unsuccessful in getting it
to work. I'll provide my setup here perhaps somebody could
point out some things I've been doing wrong?
There was a simple
At 03:47 PM 1/1/00 +0100, Christian Buysschaert wrote:
Hello Bertie,
Thanks for providing this patch!
I've been testing it but have been unsuccessful in getting it
to work. I'll provide my setup here perhaps somebody could
point out some things I've been doing wrong?
Server: Apache
Christian Buysschaert wrote:
Hello Bertie,
Thanks for providing this patch!
I've been testing it but have been unsuccessful in getting it
to work. I'll provide my setup here perhaps somebody could
point out some things I've been doing wrong?
The actual error you receive:
Ben Laurie wrote:
Dr Stephen Henson wrote:
Christian Buysschaert wrote:
Hello Bertie,
Thanks for providing this patch!
I've been testing it but have been unsuccessful in getting it
to work. I'll provide my setup here perhaps somebody could
point out some things I've
Dr Stephen Henson wrote:
Ben Laurie wrote:
Dr Stephen Henson wrote:
Christian Buysschaert wrote:
Hello Bertie,
Thanks for providing this patch!
I've been testing it but have been unsuccessful in getting it
to work. I'll provide my setup here perhaps
Ben Laurie wrote:
Dr Stephen Henson wrote:
Ah I see the point now. The server doesn't have to generate the RSA
temporary key and more importantly sign it with the certified key: this
is likely to be an expensive operation.
The next problem is how can the server in general determine
Rene G. Eberhard wrote:
Dr Stephen Henson wrote:
Adrian Peck wrote:
The basic problem is that IE4 or 5 will issue a client hello message
immediately after receiving the server hello and server
certificate if it
finds that this certificate was a Server Gated Crypto (
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Dr Stephen Henson
Sent: Sunday, January 02, 2000 12:14 AM
To: [EMAIL PROTECTED]
Subject: Re: SGC support in OpenSSL
Rene G. Eberhard wrote:
Dr Stephen Henson wrote:
Adrian Peck wrote
Adrian Peck wrote:
Having found that the Microsoft SGC extensions to SSL were not implemented
in openssl-0.9.4, I made some changes myself. However as you can see the
changes are very hacky due to my wish to keep the changes as simple as
possible.
The basic problem is that IE4 or 5 will
Having found that the Microsoft SGC extensions to SSL were not implemented
in openssl-0.9.4, I made some changes myself. However as you can see the
changes are very hacky due to my wish to keep the changes as simple as
possible.
The basic problem is that IE4 or 5 will issue a client hello
extension and MS SGC extension.
Thanks.
--Yunhong
-Original Message-
From: Adrian Peck [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, December 21, 1999 9:24 AM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: SGC support in OpenSSL
Having found that the Microsoft SGC extensions to SSL were
13 matches
Mail list logo
